Data protection declaration

A. Safety and protection of your personal data

It is our utmost priority to safeguard the confidentiality of your personal data and to protect it from unauthorised access. We therefore apply exceptional care and diligence as well as the latest security standards in order to guarantee maximum protection of your personal data.

As a private company, we are subject to the conditions of the European General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG). We have taken technical and organisational measures to ensure that the data protection regulations will be respected both by us and our external service providers.

B. Definitions

The legislators demand that personal data must be processed legally, in good faith and in a manner that is transparent for the respective person (“lawfulness, processing in good faith, transparency“). We therefore take this opportunity to inform you about the individual legal definitions that are used in this data protection declaration:

Personal data

”Personal data“ is any information that relates to an identified or identifiable individual person (hereafter called “respective person“); any natural person is seen as identifiable, if this person can be identified directly or indirectly, especially via classification in terms of an ID, such as a name, an ID number, location information, an online ID or one or several characteristics, which are an expression of the physical, physiological, genetical, psychological, economic, cultural or social identity of a natural person.

Processing

“Processing“ is any process carried out with or without automated procedures or any such series of processes in connection with personal data, such as the collection, acquisition, organisation, classification, storage, adaptation or modification, analysis, retrieval, use, disclosure by transmission, distribution or any other type of provision, the matching or linking, the restriction, the deletion or destruction.

Restriction of processing

“The restriction of processing“ is the labelling of personal data with the aim to restrict its processing for the future.

Profiling

“Profiling“ is any type of automated processing of personal data, where the data is used to evaluate certain personal aspects relating to a person, especially to analyse and forecast aspects regarding work performance, economic situation, health, personal favourites, interests, reliability, behaviour, location or change thereof of this person.

Pseudonymisation

“Pseudonymisation“ is the processing of personal data in a manner, where the personal data cannot be attributed to a specific person without involvement of additional information, provided that this additional information is stored separately and is subject to technical and organisational measures, which guarantee that the personal data cannot be assigned to an identified or identifiable natural person.

File system

“File system“ is any structured collection of personal data which is accessible according to certain criteria, irrespective of this collection being centralised, decentralised or organised according to functional or geographical aspects.

Responsible entity

“Responsible entity” is a natural or legal person, authority, institution or other organisation, who – on their own or together with others – decides upon the purposes and ways of processing personal data; if the purposes and ways of processing are determined by Union law or by the law of the member states, the responsible entity or the determined criteria of his/her/its appointment can be stipulated in accordance with the Union law or the law of the member states.

Processor

“Processor“ is a natural or legal person, authority, institution or other organisation, who processes personal data on behalf of the responsible entity.

Recipient

“Recipient“ is a natural or legal person, authority, institution or other organisation to whom the data is disclosed, irrespective of the fact whether this is a third party or not. Authorities who might receive personal data as part of an investigation in accordance with Union law or the law of the member states, are not classified as recipients; the processing of this data by the respective authorities is carried out in accordance with current data protection regulations in line with processing purposes.

Third party

“Third party“ is a natural or legal person, authority, institution or other organisation, who, apart from the respective person, the responsible entity, the processor and the persons, who are authorised by the direct responsibility of the responsible entity or the processor, is authorised to process the personal data.

Consent

A “consent“ by the respective person is every declaration of intention given voluntarily for the respective case, in an informed and unambiguous way as a declaration or an otherwise clearly confirming action with which the respective person shows that he/she agrees to the processing of his/her personal data.

C. Detailed data protection declaration

1. Information about the collection of personal data

(1) Hereafter, we inform you about the collection of personal data when using our website. Personal data is for instance your name, address, email address, user behaviour. Our internet presence is generally aimed at adults. Persons below 18 years should not provide any personal data without prior consent of their parents or guardians.

(2) The responsible person according to Article 4 Paragraph 7 EU General Data Protection Regulation (GDPR) is given in our imprint https://www.huelsta.com/en/site-notice/. You can contact our data protection officer at our postal address, for the attention of “der Datenschutzbeauftragte“ (the data protection officer) or at our email address:

(3) The processing of personal data is only legal, if there is a legal basis for the processing. According to Article 6 Paragraph 1 lit.a) – f) GDPR, the legal basis can be:

a) the respective person has given his/her consent to the processing of his/her personal data for one or several purposes;

b) the processing is necessary for the fulfilment of a contract, where the respective person is a contractual party, or to carry out pre-contractual measures that are carried out upon request of the respective person;

c) the processing is necessary for the fulfilment of a legal obligation the responsible entity is subject to;

d) the processing is necessary to protect vital interests of the respective person or another natural person;

e) the processing is required in order to carry out a task that is in the public interest or in the exercise of official authority vested in the responsible entity;

f) the processing is necessary in order to safeguard the legitimate interests of the responsible entity or a third party, provided that the interests or basic rights and freedoms of the respective person that require the protection of personal data do not prevail, especially when the respective person is a child.

(4) When you contact us by email or via a contact form on our website https://www.huelsta.com/en/contact/, we store the data provided by you (your email address, possibly your name and your phone number) in order to answer your questions. We will delete this data once storing it is no longer required, or we restrict its processing, if there is a legal obligation to keep such information.

(5) If you only use our website for information purposes, i.e. if you do not register or submit information in any other way, we only collect the personal data that your browser transfers to our server. When you visit our website, we collect the following data, which we require from a technical point of view to show you our website and guarantee stability and safety. (Legal basis is Article 6 Paragraph 1 S. 1 lit. f of the DS-GVO, i.e. GDPR):

IP address

date and time of enquiry

time zone difference to Greenwich Mean Time (GMT)

content of request (specific page)

content of request (specific page)

volume of data transmitted

website that the request comes from

browser

operating system and its interface

language and version of browser software

(6) In addition to using our website for purely informative purposes, we offer different services that you can use, if you are interested. In order to do so, you generally must enter further personal data, which we use to provide the respective service. The aforementioned regulations for data processing apply.

(7) We partly use external service providers to process your data. These have been carefully selected and contracted by us, they are bound to follow our instructions, are monitored on a regular basis and are specified in more detail in the subsequent data declaration.

(8) We can also pass your personal data onto Third Parties, when campaigns, competitions, contract conclusions or similar services are offered in conjunction with our partners. Further information about this is provided when you are entering your personal data or within the description of the respective offer.

(9) When the headquarters of our service providers or partners are outside of the European Economic Area (EEA), we will inform you about the consequences of this situation before any request for personal data that is relevant to one of these service providers or partners.

(10) hülsta is part of the Hüls group, i.e. a group of companies. With regard to certain personal data, for administration purposes (e.g. data processing, order processing), it might be necessary to give access to personal data to another company within the Hüls group. In particular the DIHUG GmbH as a group-internal administration unit based in Stadtlohn relies on the transfer/access to the collected data. Such a group-internal data transfer is permitted, provided that a justifiable interest for the transfer of data exists and the interest, basic rights or basic freedoms of the respective persons do not prevail. (Article 6 Paragraph. 1 Lit. f) GDPR).

2. Use of cookies

(1) In addition to the aforementioned data, when using our website, cookies are stored on your computer. Cookies are small text files, which are stored on your hard drive and filed according to your browser, providing the organisation that places the cookie (in this case us) with certain information. Cookies cannot run programs or transmit viruses onto your computer. Their purpose is to make the internet more user-friendly and more effective.

(2) This website uses the following types of cookies; their extent and functionality will be explained hereafter:

– Transient cookies (see a))

– Persistent cookies (see b))

a) Transient cookies are automatically deleted when you close the browser. Among them are mainly the session cookies. These store a so-called session ID, allowing the different enquiries of your browser to be assigned accordingly. Your computer can then be recognised, when you return to our website. The session cookies are deleted when you log off or close the browser.

b) Persistent cookies are automatically deleted after a pre-determined period that differs depending upon the cookie. You can delete the cookies in your security settings at any time.

You can configure your browser settings to suit your personal requirements; for instance, you can refuse the acceptance of Third Party cookies or any cookies at all. So-called “third party cookies are cookies that are set by a third party, i.e. not by the website that you are visiting. Please note that deactivating cookies might lead to you not being able to use all the functionalities of this website.

(3) Furthermore, we use cookies on our website that are provided to us by third party suppliers as so-called pixels in order to allow an analysis of the surfing behaviour of our website visitors and to subsequently address them on other websites with targeted and interest-related advertisements. For these purposes, we use pixels from the following third party providers:

The processing of the data collected by these pixels is carried out on the basis of § 15 (3) TMG s well as Article 6 (1) lit. f GDPR from the justifiable interest in the aforementioned purposes.

The data collected from you in this manner is pseudonymised/anonymised using technical measures. An allocation of the data to your person is therefore no longer possible. The data is not stored together with your other personal data.

For reasons resulting from this special situation, you have the right to object to this kind of processing of your personal data based on Article 6 (1) f GDPR at any time.

3. Use of our web shop

(1) If you wish to order from our web shop, you are obliged, for the conclusion of the contract, to enter your personal data, which we require for processing your order and which, in the case of delivery by a third party, we need to pass on to this extent to this third party for the processing of the delivery. The mandatory fields for the processing of the contract are marked separately, additional details are voluntary. The data submitted by you is used to process your order. We are entitled to pass on your payment data to our bank. The respective legal basis is Article 6 Paragraph. 1 S. 1 lit. b GDPR. 6 Abs. 1 S. 1 lit. b DSGVO.

You can voluntarily open a customer account, which allows us to store your data for later purchases. The opening an account under “My account“, your data is stored on a revocable basis. All further data, including those of your user account, can always be deleted within the customer area.

(2) For commercial and tax reasons, we are obliged to store your address, payment and order date for a period of ten years. However, after two years we restrict the processing, i.e. your data is only used to comply with the legal obligations.

(3) In order to prevent unauthorised access by Third Parties to your personal data, especially bank details, we encrypt the order process using TLS- technology.

(4) We offer several payment methods for the use of our web shop, making us of different payment providers. Depending on which payment method you decide upon, different data is transmitted to the respective payment provider. The legal basis for the transfer of data is Article 6 Paragraph.1 S. 1 lit. a GDPR. Please find hereafter our payment providers. 6 Abs.1 S. 1 lit. a DSGVO. Nachfolgend listen wir Ihnen unsere Zahlungsdienstleister auf.

PayPal

If you decide to pay by PayPal, your personal data is transmitted to PayPal and to Payone. The requirements for the using PayPal is to open a PayPal account. When using or opening a PayPal account, among others, name, address, telephone number and email address must be transmitted to PayPal. The legal basis for the transfer of the data is Article 6 Paragraph 1 lit. a GDPR (consent) and Article 6 Paragraph 1 lit. b GDPR (Processing for the fulfilment of a contract).

For the payment option PayPal, you are consenting to the transfer of your personal data such as name, address, telephone number and email address to PayPal. The respective data protection declaration by PayPal details which further data is collected by PayPal. The declaration can be found at: https://www.paypal.com/de/webapps/mpp/ua/privacy-full

4. Newsletter

(1) You can consent to the subscription to our newsletter, which provides information about current interesting offers. The type of advertised goods and services is detailed in the declaration of consent.

(2) For the registration to our newsletter we used the so-called “Double-opt-in procedure”. After entering your email address on our websites, we send an email to the indicated email address, asking you to reconfirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information is blocked and automatically deleted after one month. Furthermore, we store your respective IP addresses and times of registration and confirmation. The purpose of this procedure is to enable us to prove your registration and if required to clarify a possible abuse of your personal data.

(3) The only mandatory data for sending the newsletter is your email address. The disclosure of further, separately marked data is voluntary and is used to personally address you. After your confirmation, we store your email address in order to send the newsletter. The legal basis is Article 6 Paragraph 1 S lit. a GDPR. 6 Abs. 1 S. 1 lit. a DSGVO.

(4) Your consent to the newsletter can be revoked at any time to unsubscribe to the newsletter. To declare your revocation, simply click on the link that is provided in every newsletter, use the form on this website, send an email to Datenschutz@huelsta.de or send a message to the contact given in the imprint https://www.huelsta.com/en/site-notice

(5) Please note that we analyse your user behaviour with the newsletter subscription. For this analysis, the sent emails contain so-called web beacons or tracking pixels, which constitute one-pixel image files, which are stored on our website. For the analysis, we link the data detailed in § 3 and the web beacons with your email address and an individual ID. The data is exclusively collected pseudonymised, i.e. the IDs are not linked with your further personal data, a direct reference to your person is impossible. You can withdraw your consent to this tracking at any time by clicking on a separate link that is provided in every email or by contacting us another way. The information is stored as long as you are subscribing to the newsletter. After unsubscribing, we store the data purely statistically and anonymously.

5. Objection to or cancellation of the processing of your data as well as further rights

(1) Cancellation of consent

Provided that the processing of your personal data is based upon a given consent, you have the right to cancel your consent at any time. The cancellation of consent does not affect the lawfulness of the processing of data until the date of cancellation.

To exert your right of cancellation, you can contact us by email at any time:

You have the right to obtain confirmation as to whether we process your personal data. You can ask for this confirmation at any time by contacting the respective contact indicated in this data protection declaration.

(3) Right of information

Provided that personal data is processed, you have the right to ask for information about this personal data at any time:

a. processing purposes;

b. categories of personal data that are being processed;

c. the recipients or categories of recipients who the data has been disclosed to or will be disclosed to, especially for recipients in third countries or international organisations;

d. if possible, the planned duration for which the personal data is stored, or, if this is not possible, the criteria for the determination of this duration;

e. the existence of a right to the correction or deletion of your personal data or to the restriction to process the data by a responsible entity or to the rights to object to the processing;

f. the existence of a right to complain to a supervisory authority;

g. if the personal data has not been collected from the respective person, then all available information about the origin of the data;

h. the existence of an automated decision-making including profiling in accordance with Article 22 Paragraphs 1 and 4 GDPR and – at least in these cases – meaningful information about the respective rationale as well as the scope and the envisaged effects of such processing for the respective person.

If personal data is transmitted to a third country or an international organisation, you have the right to be informed about suitable guarantees in accordance with Article 46 GDPR in connection with the transfer. We provide a copy of the personal data that is undergoing processing. On the basis of administration costs, we can ask for a reasonable fee for any further copies that you request as a person. If you send your request electronically, the information must be made available in a common electronic format, unless otherwise stipulated. The right to obtain a copy in accordance with Paragraph 3 must not affect the rights and freedoms of other persons.

(4) Right of correction

You have the right to demand immediate correction of your incorrect personal data. Taking into consideration the purpose of processing, you have the right to demand the completion of your incomplete personal data, even by means of an additional explanation.

(5) Right of deletion (“Right to be forgotten“)

You have the right to ask the responsible entity that your personal data are deleted with immediate effect, and we are obliged to delete personal data instantly, provided that one of the following reasons applies:

a. The personal data is no longer required for the purposes that it was collected for or processed otherwise.

b. The respective person cancels his/her consent that related to the processing in accordance with Article 6 Paragraph 1 Letter a or Article 9 Paragraph 2 Letter a GDPR, and there is no other legal basis for its processing. .

c. In accordance with Article 21 Paragraph 1 GDPR, the respective person files an objection against the processing and there are no overriding legitimate reasons for the processing, or the respective person files an objection against the processing in accordance with Article 21 Paragraph 1 GDPR.

d. The personal data has been processed unlawfully.

e. The deletion of the personal data is required in accordance with Union Law or the law of the member states which the responsible entity is subject to.

f. The personal data have been collected in relation to offered services of the information society in accordance with Article 8 Paragraph 1 GDPR.

If the responsible entity has made the personal data public and if he/she/it is obliged to delete it in accordance with Paragraph 1, he/she/it takes appropriate, if necessary technical, measures in consideration of available technologies and implementation costs in order to inform those responsible for the data processing of personal data that a person has demanded the deletion of all links to this personal data or the copies or replications of this personal data.

The right of deletion (“Right to be forgotten“) does not exist if processing is necessary:

– in order to exert the right of freedom of speech and information;

– in order to fulfil a legal obligation that requires the processing in accordance with the law of the Union or the member states, which the responsible entity is subject to, or to perform a task that is in the public interest or in the exercise of official authority that has been assigned to the responsible entity;

– for reasons of public interest in the public health sector in accordance with Article 9 Paragraph 2 Letters h and i as well as Article 9 Paragraph 3 GDPR;

– for archive purposes in the public interest, scientific or historic research purposes or for statistical purposes in accordance with Article 89 Paragraph 1 GDPR, provided that the right detailed in Paragraph 1 most probably makes the realisation of the targets of this processing impossible or seriously restricts it, or

– to enforce, exercise or defend legal claims.

(6) Right of restriction of processing

You have the right to demand restriction of processing your personal data, if one of the following conditions is met:

a. the correctness of the personal data is contested by the respective person, namely for a duration that enables the responsible entity to check the correctness of the personal data;

b. the processing is unlawful and the respective person objects to the deletion of the personal data and instead demands the restriction of use of the personal data;

c. the responsible entity no longer requires the personal data for processing purposes, the respective person, however, needs it to enforce, exercise or defend legal claims, or

d. the respective person has filed an objection against the processing in accordance with Article 21 Paragraph 1 GDPR, as long as it is not clear whether the justified reasons of the responsible entity prevail with regard to the respective person.

If the processing has been restricted in accordance with the above mentioned conditions, the personal data – apart from its storage – can only be processed with the consent of the respective person or to enforce, exercise or defend legal claims, or to protect the rights of another natural or legal person, or for reasons of an important public interest of the Union or one of its member states.

In order to assert the right of restriction of processing, the respective person can contact us at any time using the above mentioned contact details.

(7) Right of data transfer

You have the right to obtain your personal data that you made available to us in a structured, common and machine-readable format, and you have the right to transmit this data to another responsible entity without being impeded by the responsible entity that has been given the personal data, provided that:

a. the processing is based upon a consent in accordance with Article 6 Paragraph 1 Letter a or Article 6 Paragraph 1 Letter b GDPR and

b. the processing is carried out using automated procedures.

When exercising the right of data transfer in accordance with Paragraph 1 you have the right to demand that the personal data is directly transferred from one responsible entity to another responsible entity, provided that this is technically possible. Exercising the right of data transfer does not affect the right of deletion („Right to be forgotten“). This right does not apply for processing that is required to carry out a task that is in the public interest or an exercise of official authority, which has been given to the responsible entity.

(8) Right of objection

For reasons resulting from your personal situation, you have the right to object at any time to the processing of your personal data, which is based upon Article 6 Paragraph 1 Letters e or f GDPR; this also applies to the profiling based upon these regulations. The responsible entity no longer processes the personal data, unless he/she/it can prove that there are compelling and legitimate grounds for the processing, which prevail over the interests, rights and freedoms of the respective person, or the processing is carried out to enforce, exercise or defend legal claims.

If personal data is processed in order to carry out direct marketing, you have the right to object to the processing of your personal data for the purpose of such marketing at any time; this also applies for the profiling, if it is linked to such direct marketing. If you object to the processing for direct marketing purposes, then your personal data will no longer be processed for these purposes.

In connection with the use of services provided by the information society and irrespective of guideline 2002/58/EG, you can exercise your right of objection by means of automated procedures that use technical specifications.

For reasons resulting from your personal situation, you have the right to object to the processing of your personal data for scientific or historical research purposes or for statistical purposes carried out in accordance with Article 89 Paragraph 1, unless the processing is required in order to fulfil a task in the public interest.

You can exercise the right of objection at any time by contacting the respective responsibly entity or those contacts detailed within this data protection declaration.

(9) Automated decisions in individual cases including profiling

You have the right not to be subject to a decision that is exclusively based upon automated processing – including profiling -,which produces its legal effects towards you or considerably affects you in a similar manner. This does not apply, if the decision:

a. is necessary in order to conclude or fulfil a contract between the respective person and the responsible entity,

b. is permitted due to legal regulations of the Union or the member states, which the responsible entity is subject to, and if these legal regulations contain appropriate measures to safeguard the rights and freedoms as well as legitimate interests of the respective person or

c. is taken with the expressive consent of the respective person.

The responsible entity takes the appropriate measures in order to safeguard the rights and freedoms as well as the legitimate interests of the respective person, which includes the right of intervention by a person of the responsible entity, the right to be given the opportunity to explain your point of view and the right to challenge the decision.

The respective person can exercise this right at any time by contacting the respective responsible entity.

(10) Right of complaint to the supervisory authority

Furthermore and irrespective of another administrative or jurisdictional legal remedy, you have the right to complain to a supervisory authority, especially in the member state of your residence, your place of work or the location of the suspected violation, if the respective person believes that the processing of their personal data violates this declaration.

(11) Right of effective jurisdictional legal remedy

Irrespective of an available administrative or extrajudicial legal remedy including the right of complaint to a supervisory authority in accordance with Article 77 GDPR, you have the right to an effective jurisdictional legal remedy, if the authority believes that the rights attributed to it due to this declaration have been violated because the processing of your personal data is not in accordance with this declaration.

6. Use of Google Analytics

(1) This website uses Google Analytics, an advertising analysing service by Google Inc. (“Google”). Google Analytics uses so-called “Cookies”, text files, which are stored on your computer and allow an analysis of the way you use the website. The information that is created by the cookie about your use of this website is transferred to a Google server in the USA and subsequently stored. In the event of an activation of the IP anonymisation on this website, your IP address is shortened beforehand by Google within the member states of the European Union or in other signatories of this agreement across the European Economic Area. The full IP address is only transferred in exceptional cases to a Google server in the USA and shortened there. On behalf of the provider of this website, Google will use this information in order to analyse your use of the website, to produce reports about website activities and to provide further services, which are connected to the website and internet use, for the website provider.

(2) The IP address transmitted by your browser within the framework of Google Analytics is not joined with other data from Google

(3) You can prevent the storage of cookies with a certain setting of your browser software; however, please note that in this case you might not be able to fully use all functionalities of this website. Furthermore, you can prevent the collection of the data created by the cookie and relating to your use of the website (incl. your IP address) as well as their processing by Google, if you download and install the available browser plug-in from the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

(4) This website uses Google Analytics with the extension “_anonymizeIp()“. This ensures that IP addresses are shortened, thus ruling out that they can be linked to a particular individual. If your data is linked with a personal reference, it will be ruled out immediately, and the personal data is instantly deleted.

(5) We use Google Analytics in order to analyse and regularly improve our website. The resulting statistics allow us to improve our presence and make it more interesting for you as a user. For those exceptions where personal data is transferred to the USA, Google is subject to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Article 6 Paragraph 1 S. 1 lit. f GDPR.

User conditions:http://www.google.com/analytics/terms/de.html,Overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the data protection declaration: http://www.google.de/intl/de/policies/privacy.

(7) Furthermore, this website uses Google Analytics for an analysis of visitor streams across devices that is carried out via a user ID. Within your customer account, under “My data“ and “Personal data” you can deactivate the analysis of your use across devices.

8. Use of social media plug-ins

(1) We currently use the following social media plug-ins: Facebook, Pinterest, Instagram. We actually use the so-called two-click solution. When you visit our site, to begin with, we generally do not pass on any personal data to the plug-in providers. You can recognise the plug-in provider by the labelling on the box above its first letter or by the logo. We give you the possibility to communicate directly with the provider via the button. The plug-in provider only receives the information that you have called up from the respective website of our online presence, if you click on the marked field, thereby activating it. Additionally, the data detailed in § 3 of this declaration is transmitted. According to the respective providers in Germany, in the case of Facebook and Xing, the IP address is anonymised immediately after collection. Activating the plug-ins leads to your personal data being transferred to the respective plug-in provider and stored accordingly (at American providers in the USA). As the plug-in provider mainly carries out the data collection via cookies, we recommend deleting all cookies via the security setting of your browser before clicking on the grey box.

(2) We have no influence over the collected date and data processing procedures, and we do not have any details regarding the full extent of the data collection, the purposes of processing nor the duration of storage. Neither do we have any information regarding the deletion of the collected data via the plug-in provider.

(3) The plug-in provider stores your data as usage profiles and uses these for advertising, market research and/or appropriate design of its website. Such an analysis is mainly carried out (even for non-logged-in users) for the preparation of appropriate advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, however you need to contact the respective plug-in provider to exercise that right. Through the plug-ins we offer you the possibility to interact with the social networks and other users, allowing us to improve our offer and to make it more interesting for you as a user. The legal basis for the use of plug-ins is Article 6 Paragraph 1 S 1 lit. f GDPR.

(5) Further information regarding the purpose and extent of the data collection and its processing by the plug-in providers can be found in the following data protection declarations of these providers. You will also find further information regarding your respective rights and settings to ensure the protection of your privacy.

(6) Addresses of the respective plug-in providers and URL with their data protection notes:

(1) On this website, we use Google Maps. This allows us to show you interactive maps directly on the website, thus allowing you the practical use of the map function.

(2) By visiting our website, Google receives the information that you have called up the respective sub-site of our website. Furthermore, the data detailed in § 3 of this declaration is transmitted. This is carried out irrespective of whether Google provides a user account that you are logged into or whether there is no user account. If you are logged into Google, your data is directly assigned to your account. If you do not want your data to be assigned to your Google profile, you must log out before activating the button. Google stores your data as user profiles and uses it for advertising purposes, market research and/or appropriate design of its website. Such an analysis is mainly carried out (even for non-logged-in user) for the preparation of appropriate advertising and to inform other users of the social network about your activities on our website. You have a right of objection to the creation of these user profiles, however you need to contact Google to exercise that right.

(3) Further information regarding the purpose and extent of the data collection and its processing by the plug-in providers can be found in the following data protection declarations of this provider. You will also find further information regarding your respective rights and settings to the ensure the protection of your privacy: http://www.google.de/intl/de/policies/privacy. Google also processes your data in the USA and is subject to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

11. Integration of Google Tag Manager

(1) On this website, we use Google Tag Manager. Google Tag Manager is a software from Google Inc. that allows companies to manage website tags via an interface. The Google Tag Manager is a cookie-less domain that does not collect any personal data. The Google Tag Manager triggers other tags that in turn might collect data, which we would hereby like to draw your attention to. The Google Tag Manager does not access this data. As long as deactivation on domain or cookie level has been carried out by the user, this will remain for all tracking tags, which are implemented with Google Tag Manager.

(2) On behalf of the provider of this website, Google will use this information in order to analyse your use of the website, to produce reports about website activities and to provide further services, which are connected to the website and internet use, for the website provider. For this purpose, Google uses pseudonyms. The IP address transmitted by your browser within the framework of Google Analytics is not joined with other data from Google.

More information regarding the Google Tag Manager can be found at: https://www.google.com/intl/de/tagmanager/

We use the remarketing function within the Google AdWords service. The remarketing function allows us to present adverts based on the interest of our website users on other websites within the Google display network (so-called “Google adverts” on Google itself or on other websites). For this purpose, the interaction of the users on our website is analysed, for instance offers in which the user is interested in, so that after the visit to our website we can show the users target-oriented adverts on other sites. For this purpose, Google stores a number within the browsers of users, who visit certain Google services or website within the Google display network. Through this number, designated as a “Cookie”, the visits of these users are recorded. This number is used to clearly identify a web browser on a certain computer and not to identify a person, personal data is not stored. You can deactivate the use of cookies by Google by downloading and installing the plug-in from the following link https://www.google.com/settings/ads/plugin. Further information regarding Google remarketing as well as the data protection declaration from Google can be found at: http://www.google.com/privacy/ads/.

As part of the Google AdWords service we also use the so-called conversion tracking. If you click on an advert placed by Google, a cookie for conversion tracking is filed on your computer/device. These cookies are only valid for 30 days, do not contain any personal data and are therefore not used for personal identification. The information that is collected by means of a conversion cookie is used to create conversion statistics for AdWords customers that have decided upon conversion tracking.

(2) You can prevent the storage of cookies with a certain setting of your browser software; however, please note that in this case you might not be able to fully use all functionalities of this website. Furthermore, you can deactivate interest-related adverts on Google as well as interest-related Google adverts on the web (within the Google display network) within your browser, by activating “Off“ at http://www.google.de/settings/ads or by carrying out the deactivation at http://www.aboutads.info/choices/. Further information regarding the respective setting and data protection at Google can be found at https://www.google.de/intl/de/policies/privacy/?fg=1.

13. Processor

We use external service providers (Processors) for instance for dispatching goods, newsletters or for payment processing. We make separate agreements for the processing of order data to ensure the protection of your personal data.